1. Introduction
At Neolegal Inc. (“Neolegal”), we place great importance on the protection of personal information. This policy explains how we collect, use, disclose, retain, and protect personal information in the course of our activities.
It is established in accordance with the Act to modernize legislative provisions as regards the protection of personal information (Law 25) in Quebec, as well as the Personal Information Protection and Electronic Documents Act (PIPEDA) in Canada.
Neolegal is a legal technology platform that provides legal services. In this capacity, members of our legal team are also subject to confidentiality obligations and professional secrecy under the Code of Professional Conduct of Lawyers and the Professional Code, as well as other applicable professional obligations for legal services rendered outside Quebec. Neolegal agrees to act on behalf of the client exclusively for the purpose of providing services limited to the specific subscribed package.
2. Information We Collect
We collect only the personal information necessary to provide our services, including:
- your name, contact details, and other identifying information;
- information relating to your file or request;
- documents and records you transmit to us;
- information required to verify conflicts of interest;
- administrative and billing information;
- information shared during your exchanges with our team or with a technological tool we make available to you.
Neolegal does not retain any payment information or data required for purchase transactions. Such data is encrypted and destroyed after use in accordance with industry standards. Our payment providers comply with the highest industry standards.
3. Why Do We Collect This Information?
We use your personal information in order to:
- confirm your identity;
- verify the absence of conflicts of interest;
- provide the requested services;
- administer and track your file;
- communicate with you;
- handle administrative matters and billing;
- fulfill our legal, regulatory, and professional obligations;
- ensure the security of our systems and improve our internal processes.
4. Consent
We collect, use, and disclose your personal information with your consent, except where the law permits or requires otherwise.
Your consent must be free, informed, and given for specific purposes. Depending on the nature of the information and the context, consent may be express (signed form, checkbox) or implied, in accordance with the legal requirements.
You may withdraw your consent at any time to the extent permitted by law, subject to certain legal, regulatory, professional, or contractual limitations. Withdrawing consent may, however, limit our ability to provide certain services.
5. Use of Artificial Intelligence
Neolegal may use artificial intelligence tools to support certain aspects of its operations and services, including for:
- initial collection of information;
- routing of requests;
- administrative sorting;
- preliminary processing of certain files;
- organizing, summarizing, or extracting information from documents;
- answering certain general questions of an administrative or informational nature;
- improving internal operational efficiency.
When a person interacts with a conversational agent or an artificial intelligence-based tool, Neolegal clearly indicates this at the time of the interaction or before it begins.
Personal information shared in the course of these interactions may be used to process the request, manage the file, direct the person to the appropriate resource, improve our internal processes, and provide the requested services, within the limits permitted by law.
The artificial intelligence tools used by Neolegal:
- do not provide legal advice;
- do not replace a lawyer or other qualified professional;
- do not render legal or strategic decisions on behalf of Neolegal;
- do not alone determine the outcome of a file.
Any legal opinion, recommendation, strategy, or decision remains under the exclusive responsibility of a qualified human professional.
Any person may request to be redirected to a member of the Neolegal team when human intervention is necessary or desired.
Unless otherwise clearly communicated to the person concerned, the personal information of our clients is not used to train public, general, or third-party-accessible artificial intelligence models. Neolegal implements reasonable measures to limit access to personal information processed through artificial intelligence tools and to ensure that such tools are used in a secure, confidential, and legally compliant manner. Where these tools involve a transfer of personal information outside Quebec, a privacy impact assessment is conducted beforehand in accordance with the Law.
6. Disclosure to Third Parties
We may disclose certain personal information to service providers or partners where necessary for our operations, including providers of technological services, cloud hosting, cybersecurity, payment processing, artificial intelligence solutions, or other partners involved in delivering our services.
We may also disclose personal information when required or permitted by law, including to authorities, regulatory bodies, or courts.
In all cases, we ensure that such third parties offer an adequate level of protection and use personal information only for authorized purposes.
7. Transfers Outside Quebec
Our data is hosted in Canada. If personal information were to be disclosed outside Quebec, and where required by law, we would first conduct a privacy impact assessment (PIA) to ensure that the information will receive adequate protection. We will also ensure that appropriate contractual safeguards govern such transfers.
9. Security
We implement reasonable security measures appropriate to the sensitivity of the personal information, including:
- access controls;
- multi-factor authentication;
- secure storage;
- regular backups;
- encryption where required;
- staff training;
- audits and preventive measures.
Only authorized individuals have access to personal information, to the extent necessary for the performance of their duties.
10. Retention & Client Files
We retain personal information for as long as necessary for the intended purposes or to fulfill our legal and professional obligations.
Client files are retained for seven (7) years following their closure, in accordance with the professional obligations applicable to lawyers, after which personal information is securely destroyed or anonymized where permitted by law.
For quality control purposes and in compliance with the Code of Professional Conduct of Lawyers, conversations between a client and a Neolegal representative may be recorded. They are stored with the highest level of security and are accessible only to authorized individuals.
Neolegal does not hold or request any original documents: the client remains responsible for the originals that make up their legal file.
11. Your Rights
Subject to the limitations provided by law, you may:
- access the personal information we hold about you;
- request the correction of inaccurate, incomplete, or ambiguous information;
- withdraw your consent where applicable;
- request that your personal information be communicated in a structured, commonly used technological format (right to data portability), where this right applies;
- request the cessation of dissemination or de-indexing of personal information about you that was made public without right, in the cases provided by Law;
- file a complaint regarding our personal information practices.
We will respond to any request for access or correction within thirty (30) days of receipt, in accordance with Law 25.
To exercise your rights, you may write to us at: confidentialite@neolegal.ca
If you believe your rights have not been respected, you may also file a complaint with the Commission d’accès à l’information du Québec (CAI) or, for matters falling under PIPEDA, with the Office of the Privacy Commissioner of Canada.
12. Privacy Incidents
In the event of a privacy incident presenting a risk of serious harm, we will take reasonable steps to limit the risks, address the situation, and, where required by law, notify the affected individuals and the Commission d’accès à l’information. We also maintain an incident register in accordance with applicable legal requirements.
13. Privacy Officer
The person responsible for the protection of personal information at Neolegal is the Vice-President, Legal.
Email: confidentialite@neolegal.ca
Address: 420 Notre-Dame Street West, Suite 601, Montreal, Quebec H2Y 1V3
14. Updates
This policy may be modified at any time to reflect changes in our practices, technologies, including artificial intelligence, or applicable legal requirements. The version in effect is the one published on our website.
Last updated: June 2026